├── 100个驱动演示 ├── 1.Hello world.7z ├── 10.写拷贝.zip ├── 11.驱动通信随机化.zip ├── 12.驱动通信随机化2.zip ├── 13.内存注入.zip ├── 14.SSDT HOOK.zip ├── 15.驱动通信 R3调用SSDT.zip ├── 16.进程断链.zip ├── 17.KPCR.zip ├── 18.线程断链.zip ├── 19.全局句柄表.zip ├── 2.驱动调试.zip ├── 20.句柄回调绕过.zip ├── 21.内核APC执行.zip ├── 22.用户APC执行.zip ├── 23.DPC 未文档函数插入.zip ├── 23.DPC 遍历核心插入.zip ├── 23.DPC.zip ├── 24.定时器.zip ├── 25.线程队列.zip ├── 26.ZwUnloadDriver.zip ├── 27.模板增删改插.zip ├── 28.读写.zip ├── 29.驱动安装R3.zip ├── 3.驱动断链.7z ├── 30.等待网.zip ├── 31.信号量.zip ├── 32.模块回调.zip ├── 33.线程回调.zip ├── 34.进程回调.zip ├── 35.对象钩子.zip ├── 36.消息队列.zip ├── 4.驱动通信.zip ├── 5.驱动通信R3.zip ├── 6.驱动通信封装 残.zip ├── 7.驱动通信封装R3 残.zip ├── 8.驱动通信缓冲-改.zip ├── 9.驱动劫持.zip └── 说明.md ├── README.md ├── X86Win7保护模式.pdf └── 驱动开发基础.pdf /100个驱动演示/1.Hello world.7z: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/1.Hello world.7z -------------------------------------------------------------------------------- /100个驱动演示/10.写拷贝.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/10.写拷贝.zip -------------------------------------------------------------------------------- /100个驱动演示/11.驱动通信随机化.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/11.驱动通信随机化.zip -------------------------------------------------------------------------------- /100个驱动演示/12.驱动通信随机化2.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/12.驱动通信随机化2.zip -------------------------------------------------------------------------------- /100个驱动演示/13.内存注入.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/13.内存注入.zip -------------------------------------------------------------------------------- /100个驱动演示/14.SSDT HOOK.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/14.SSDT HOOK.zip -------------------------------------------------------------------------------- /100个驱动演示/15.驱动通信 R3调用SSDT.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/15.驱动通信 R3调用SSDT.zip -------------------------------------------------------------------------------- /100个驱动演示/16.进程断链.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/16.进程断链.zip -------------------------------------------------------------------------------- /100个驱动演示/17.KPCR.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/17.KPCR.zip -------------------------------------------------------------------------------- /100个驱动演示/18.线程断链.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/18.线程断链.zip -------------------------------------------------------------------------------- /100个驱动演示/19.全局句柄表.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/19.全局句柄表.zip -------------------------------------------------------------------------------- /100个驱动演示/2.驱动调试.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/2.驱动调试.zip -------------------------------------------------------------------------------- /100个驱动演示/20.句柄回调绕过.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/20.句柄回调绕过.zip -------------------------------------------------------------------------------- /100个驱动演示/21.内核APC执行.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/21.内核APC执行.zip -------------------------------------------------------------------------------- /100个驱动演示/22.用户APC执行.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/22.用户APC执行.zip -------------------------------------------------------------------------------- /100个驱动演示/23.DPC 未文档函数插入.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/23.DPC 未文档函数插入.zip -------------------------------------------------------------------------------- /100个驱动演示/23.DPC 遍历核心插入.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/23.DPC 遍历核心插入.zip -------------------------------------------------------------------------------- /100个驱动演示/23.DPC.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/23.DPC.zip -------------------------------------------------------------------------------- /100个驱动演示/24.定时器.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/24.定时器.zip -------------------------------------------------------------------------------- /100个驱动演示/25.线程队列.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/25.线程队列.zip -------------------------------------------------------------------------------- /100个驱动演示/26.ZwUnloadDriver.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/26.ZwUnloadDriver.zip -------------------------------------------------------------------------------- /100个驱动演示/27.模板增删改插.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/27.模板增删改插.zip -------------------------------------------------------------------------------- /100个驱动演示/28.读写.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/28.读写.zip -------------------------------------------------------------------------------- /100个驱动演示/29.驱动安装R3.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/29.驱动安装R3.zip -------------------------------------------------------------------------------- /100个驱动演示/3.驱动断链.7z: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/3.驱动断链.7z -------------------------------------------------------------------------------- /100个驱动演示/30.等待网.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/30.等待网.zip -------------------------------------------------------------------------------- /100个驱动演示/31.信号量.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/31.信号量.zip -------------------------------------------------------------------------------- /100个驱动演示/32.模块回调.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/32.模块回调.zip -------------------------------------------------------------------------------- /100个驱动演示/33.线程回调.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/33.线程回调.zip -------------------------------------------------------------------------------- /100个驱动演示/34.进程回调.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/34.进程回调.zip -------------------------------------------------------------------------------- /100个驱动演示/35.对象钩子.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/35.对象钩子.zip -------------------------------------------------------------------------------- /100个驱动演示/36.消息队列.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/36.消息队列.zip -------------------------------------------------------------------------------- /100个驱动演示/4.驱动通信.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/4.驱动通信.zip -------------------------------------------------------------------------------- /100个驱动演示/5.驱动通信R3.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/5.驱动通信R3.zip -------------------------------------------------------------------------------- /100个驱动演示/6.驱动通信封装 残.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/6.驱动通信封装 残.zip -------------------------------------------------------------------------------- /100个驱动演示/7.驱动通信封装R3 残.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/7.驱动通信封装R3 残.zip -------------------------------------------------------------------------------- /100个驱动演示/8.驱动通信缓冲-改.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/8.驱动通信缓冲-改.zip -------------------------------------------------------------------------------- /100个驱动演示/9.驱动劫持.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/100个驱动演示/9.驱动劫持.zip -------------------------------------------------------------------------------- /100个驱动演示/说明.md: -------------------------------------------------------------------------------- 1 | 2 | 仅供学习使用,严禁非法用途。 3 | -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- 1 | # WindowsKernel 2 | windwos内核研究与驱动Code 3 | 4 | 这是我个人的内核研究的部分内容,仅供学习参考,严禁用于非法用途 5 | -------------------------------------------------------------------------------- /X86Win7保护模式.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/X86Win7保护模式.pdf -------------------------------------------------------------------------------- /驱动开发基础.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/0xTalShang/WindowsKernel/aba0043b68d280c7d0b55e9693e9268a130cf134/驱动开发基础.pdf --------------------------------------------------------------------------------